CN108111308A - One kind is based on the encrypted industry internet communication encryption method of dynamic random - Google Patents
One kind is based on the encrypted industry internet communication encryption method of dynamic random Download PDFInfo
- Publication number
- CN108111308A CN108111308A CN201711416190.5A CN201711416190A CN108111308A CN 108111308 A CN108111308 A CN 108111308A CN 201711416190 A CN201711416190 A CN 201711416190A CN 108111308 A CN108111308 A CN 108111308A
- Authority
- CN
- China
- Prior art keywords
- key
- random number
- communication
- dynamic
- random
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
- H04L9/16—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms the keys or algorithms being changed during operation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0631—Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/12—Transmitting and receiving encryption devices synchronised or initially set up in a particular manner
Abstract
The invention discloses one kind based on the encrypted industry internet communication encryption method of dynamic random, it is related to industry internet communication field.This method generates key using dynamic random mode, in communication both ends clocked flip dynamic key production process;Both ends communicate in locally generated random number, and carries out random number exchange, makes the random number that communication both ends are owned by locally generated random number and other side generates;Both ends communicate according to two random numbers, by key schedule, generates identical key;Both ends communicate in communication process, AES encryption and decryption is carried out using identical key to data message.The data stochastic and dynamic variation of present invention generation key, key only local store, not in transmission over networks, effectively prevent the risk of transmission key in network, enhance communication security;Secondly, key effectively prevents the key leakage hidden danger that human factor is brought without human configuration management.
Description
Technical field
The present invention relates to the industry internet communications field, be related to it is a kind of randomly generate, the communication of dynamic interaction, cipher key calculation
Encryption method specifically, refers to a kind of based on the encrypted industry internet communication encryption method of dynamic random.
Background technology
Under industry 4.0, the overall background of made in China 2025, the Chinese industrial level of informatization steps up, industrial information
Safety is more important to the importance of development of manufacturing.Internet communication equipment, generally by interchanger, router, optical transmitter and receiver group
Into these equipment complete the functions such as packing, unpacking, routing, the signal conversion of data, and in communication process, data are generally adopted
With the conventional cryptographies mode such as AES, DES, RSA, encryption intensity depends on key length, if improving the security of communication data,
Special equipment must be used, increases considerably the length (reference paper 1 of key:《Cipher scheme study》, Zhang Xiaofeng, Fan Qi
China, Cheng Hongbin etc.,《Computer technology and development》, 2006.2).Current industrial internet communication is general only using communication apparatus
Focus on industrial environment safety, for data communication mostly only with conventional cryptography mode, key length is shorter, it is impossible to reach high series
According to the requirement of safety.
For protect factory and industrial equipment from unauthorized access, sabotage, spy and malicious attack are, it is necessary to industry
Equipment product safe to use or security solution.Network communication is key link safe involved in informatization process,
The encryption communication method of research and development safety is needed, enhances the security of communication process, has to the data message transmitted in network
Effect protection.Legacy network devices are inadequate to the protecting data encryption of communication, suitable for application in the higher work of information security demand
In industry information network.And administrative staff's human configuration key is generally required in current industrial information network, there are human factors
Hidden danger of divulging a secret.
The content of the invention
The present invention needs human configuration management, legacy network devices pair for key present in current industrial information network
The problem of encryption of communicated data protection is inadequate provides a kind of based on the encrypted industry internet communication encryption side of dynamic random
Method.
It is provided by the invention to be based on the encrypted industry internet communication encryption method of dynamic random, using dynamic random mode
Key is generated, is specifically included:
In communication both ends clocked flip dynamic key production process;
Both ends communicate in locally generated random number, and carries out random number exchange, is owned by communication both ends locally generated
The random number that random number and other side generate;
Both ends communicate according to two random numbers, by key schedule, generates identical key;
Both ends communicate in communication process, AES (Advanced are carried out using identical key to data message
Encryption Standard) encryption and decryption.
The advantages and positive effects of the present invention are:
(1) the method for the present invention by randomly generating, dynamic interaction, the cipher key calculation method locally generated so that key without
Human configuration management is needed, effectively prevents the key leakage hidden danger that human factor is brought;
(2) the method for the present invention makes communication both ends (client and server end) in the case where that need not exchange key, realizes
Coded communication, so as to effectively reduce the security risk brought in network transmission cipher key processes.
Description of the drawings
Fig. 1 is the signal of the realization process based on the encrypted industry internet communication encryption method of dynamic random of the present invention
Figure.
Specific embodiment
The present invention is described in detail with reference to the accompanying drawings and examples.
It is provided by the invention a kind of based on the encrypted industry internet communication encryption method of dynamic random, as shown in Figure 1, bag
4 key links are included, are clocked flip respectively, random number is generated with exchanging, key generates, data encrypting and deciphering.It is explained in detail below each
A link.
Step 1, clocked flip.Using a software timer, according to the cycle of setting, timing performs key and generated
Journey, dynamic change the key at communication both ends.
Step 2, random number is generated with exchanging.Client using Generating Random Number, generates random number first, and will production
Server end occurs for raw random number, the random number that server end to be received is waited to return;Received server-side to client with
After machine number, using Generating Random Number, random number is generated, and the random number of generation is occurred to client.
The cycle and the time of exchange random number that random number generates can manually preset.
Step 3, key generates.Communication both ends are respectively using the random of locally generated random number and the other side that receives
Number produces algorithm according to identical key, calculates and generate identical key.
Since key uses two generating random numbers of communication two party timing generation, the security of key can be effectively improved.
In the embodiment of the present invention, two random numbers and key are generated as follows:
(1) random number generates:Random number is generated using the random function in standard C storehouses.
(2) key generates:It is raw by exclusive or, same or with linear feedback shift operator combination using 2 random numbers
Into key.
Step 4, data encrypting and deciphering.Communication both ends using identical key to respectively to the data message that sends and receives into
Row AES encryption and decryption.
Dynamic key is periodically generated in communication process by above-mentioned steps, key is without human configuration management, by network
Terminal device carries out automatically, the key leakage hidden danger that human factor is avoided to bring, and reduces in network transmission cipher key processes
The security risk brought.
Claims (2)
1. one kind is based on the encrypted industry internet communication encryption method of dynamic random, which is characterized in that including:
In communication both ends clocked flip dynamic key production process;
Both ends communicate in locally generated random number, and carries out random number exchange, is owned by communication both ends locally generated random
The random number that number and other side generate;
Both ends communicate according to two random numbers, by key schedule, generates identical key;
Both ends communicate in communication process, AES encryption and decryption is carried out using identical key to data message;AES represents advanced and adds
Data Encryption Standard.
2. according to the method described in claim 1, it is characterized in that, the communication both ends in locally generated random number, wherein
Client uses Generating Random Number, generates random number, and the random number of generation is issued server end, waits service to be received
Hold the random number returned;After server-side receives the random number of client, using Generating Random Number, random number is generated,
And the random number of generation is sent to client.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711416190.5A CN108111308A (en) | 2017-12-25 | 2017-12-25 | One kind is based on the encrypted industry internet communication encryption method of dynamic random |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711416190.5A CN108111308A (en) | 2017-12-25 | 2017-12-25 | One kind is based on the encrypted industry internet communication encryption method of dynamic random |
Publications (1)
Publication Number | Publication Date |
---|---|
CN108111308A true CN108111308A (en) | 2018-06-01 |
Family
ID=62212688
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201711416190.5A Pending CN108111308A (en) | 2017-12-25 | 2017-12-25 | One kind is based on the encrypted industry internet communication encryption method of dynamic random |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108111308A (en) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109168162A (en) * | 2018-11-20 | 2019-01-08 | 北京千丁互联科技有限公司 | Bluetooth communication encryption method, device and intelligent security guard equipment |
CN109361509A (en) * | 2018-10-25 | 2019-02-19 | 杭州隐知科技有限公司 | A kind of random digit generation method, device and storage medium |
CN110138736A (en) * | 2019-04-11 | 2019-08-16 | 泉州信息工程学院 | Internet of things multiple dynamic random encryption identity authentication method, device and equipment |
CN111726362A (en) * | 2020-06-23 | 2020-09-29 | 广东博智林机器人有限公司 | Information transmission method, information transmission system, first device and second device |
CN115664648A (en) * | 2022-10-17 | 2023-01-31 | 山东新一代信息产业技术研究院有限公司 | Dynamic key generation method without manual input in IROS |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070136057A1 (en) * | 2005-12-14 | 2007-06-14 | Phillips Desmond K | Preamble detection |
CN103529823A (en) * | 2013-10-17 | 2014-01-22 | 北奔重型汽车集团有限公司 | Security access control method for vehicle diagnosis system |
CN107040536A (en) * | 2017-04-10 | 2017-08-11 | 北京德威特继保自动化科技股份有限公司 | Data ciphering method, device and system |
CN107155184A (en) * | 2017-07-17 | 2017-09-12 | 深圳市安林克斯智能科技有限公司 | A kind of WIFI module and its communication means with security encryption chip |
-
2017
- 2017-12-25 CN CN201711416190.5A patent/CN108111308A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070136057A1 (en) * | 2005-12-14 | 2007-06-14 | Phillips Desmond K | Preamble detection |
CN103529823A (en) * | 2013-10-17 | 2014-01-22 | 北奔重型汽车集团有限公司 | Security access control method for vehicle diagnosis system |
CN107040536A (en) * | 2017-04-10 | 2017-08-11 | 北京德威特继保自动化科技股份有限公司 | Data ciphering method, device and system |
CN107155184A (en) * | 2017-07-17 | 2017-09-12 | 深圳市安林克斯智能科技有限公司 | A kind of WIFI module and its communication means with security encryption chip |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109361509A (en) * | 2018-10-25 | 2019-02-19 | 杭州隐知科技有限公司 | A kind of random digit generation method, device and storage medium |
CN109168162A (en) * | 2018-11-20 | 2019-01-08 | 北京千丁互联科技有限公司 | Bluetooth communication encryption method, device and intelligent security guard equipment |
CN109168162B (en) * | 2018-11-20 | 2021-09-21 | 北京千丁互联科技有限公司 | Bluetooth communication encryption method and device and intelligent security equipment |
CN110138736A (en) * | 2019-04-11 | 2019-08-16 | 泉州信息工程学院 | Internet of things multiple dynamic random encryption identity authentication method, device and equipment |
CN110138736B (en) * | 2019-04-11 | 2022-05-13 | 泉州信息工程学院 | Identity authentication method, device and equipment for multiple dynamic random encryption of Internet of things |
CN111726362A (en) * | 2020-06-23 | 2020-09-29 | 广东博智林机器人有限公司 | Information transmission method, information transmission system, first device and second device |
CN115664648A (en) * | 2022-10-17 | 2023-01-31 | 山东新一代信息产业技术研究院有限公司 | Dynamic key generation method without manual input in IROS |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108111308A (en) | One kind is based on the encrypted industry internet communication encryption method of dynamic random | |
CN104158653B (en) | A kind of safety communicating method based on the close algorithm of business | |
CN105049401B (en) | A kind of safety communicating method based on intelligent vehicle | |
CN103905187B (en) | A kind of network service encryption method based on content | |
CN108768930A (en) | A kind of encrypted transmission method of data | |
CN103401678A (en) | Method for ensuring data transmission safety of Internet of things | |
CN105262772A (en) | Data transmission method, data transmission system and related apparatus for data transmission method and system | |
CN108123794A (en) | The generation method and encryption method of whitepack key, apparatus and system | |
CN103634266B (en) | A bidirectional authentication method for a server and a terminal | |
US6640303B1 (en) | System and method for encryption using transparent keys | |
CN111490871A (en) | SM9 key authentication method and system based on quantum key cloud and storage medium | |
Jabeen et al. | A lightweight genetic based algorithm for data security in wireless body area networks | |
CN101808089A (en) | Secret data transmission protection method based on isomorphism of asymmetrical encryption algorithm | |
CN112740615A (en) | Multi-party computed key management | |
CN106330432A (en) | DES encryption algorithm based encryption method | |
CN102355353A (en) | Encrypted input method and encrypted communication method and device | |
CN105262586B (en) | The method for distributing key and device of automobile burglar equipment | |
CN107070642A (en) | Multi-brand cipher machine heterogeneous resource pond multiplexing technology | |
CN101867471A (en) | Irrational number based DES authentication encryption algorithm | |
CN103354637B (en) | A kind of internet-of-things terminal M2M communication encrypting method | |
CN102281303A (en) | Data exchange method | |
CN107659405B (en) | The encrypting and decrypting method of data communication between a kind of substation boss station | |
CN102624892A (en) | Method for preventing plug-in client from simulating hyper text transmission protocol (HTTP) request | |
CN107493287A (en) | Industry control network data security system | |
CN105471849A (en) | Security control method for data exchange service and transmission process |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20180601 |
|
WD01 | Invention patent application deemed withdrawn after publication |